Skip to main content

IntelliZone portal

This section contains the release notes for the IntelliZone console.

Version 1.18.0

Release date: 2024.09.30

New features

The Licensing page is now available. You can access this page to view existing licenses, and users with administrator rights can add new licenses.

Improvements

The Sandbox Analyzer page has been redesigned:

  • The Quick Sumbission and Advanced Sumission options are now available as tabs under the Sandbox Analyzer page.

  • Restructured the Advanced Sumission tab and made several changes to the UI to streamline the submission process and provide an overall better user experience.

Version 1.17.0

Release date: 2024.09.23

Improvements

Performed minor text modifications on multiple pages.

Actor details window

You can now switch between information relavant to last month, or for all time.

Threat details window

Mitre TTPs are displayed using their full names in the ATT&CK TACTICS AND TECHNIQUES section.

Resolved issues

  • The Indicator reputation section displayed when viewing threat search results now provides a correct timestamp.

  • Clicking on search suggestions when performing a cumulative search in the Threat Search page no longer fails to add the item to the search box.

  • Other minor bug fixes.

Version 1.15.0

Release date: 2024.08.08

Improvements

The Graph view window

  • You can now view additional information when displaying the indicator details side panel:

    • MITRE details

    • Country IPs

    • Exploited vulnerabilities

    Note

    The information is displayed only when available and applicable.

  • The indicator details side panel now provides links to related local and network indicators.

Threat details window

  • The total number of detected indicators is now displayed at the top of the Indicators tab, grouped per type.

  • The AI-generated threat description section now directly displays previously generated descriptions.

Actor details window

Improved the structure and interaction with the MITRE ATT&CK Tactics and Techniques section.

Resolved issues

  • Fixed an issue preventing some admins from reseting user passwords.

  • Resolved an issue causing the Threat Search page to incorrectly display results from a previous search. This issue would occurr immediately after logging in, and when searching using a URL indicator.

  • An error message is now properly displayed on the Threat Search page when using an invalid query containing the cumulative search property device_type.

  • Other minor bug fixes.

Version 1.14.0

Release date: 2024.07.11

New features

  • The Threat Reports page is now available in the IntelliZone console. It provides you access to recent reports created by Bitdefender, containing information on significant trends and developments in the threat landscape.

Improvements

  • Indicators previously identified as malicious but no longer classified as such are now displayed when viewing threat information.

  • New information is avaliable under the eCrime and organizations fields when displaying threat actor information.

  • The Graph view window now includes arrows to indicate the nature of the relationship between nodes.

  • You can now click on individual nodes in the Graph view window do display the a side panel with additional information.

Version 1.11.0

Release date: 2024.05.24

New features

  • AI generated threat descriptions are now available. You can use the feature to automatically generate descriptions for threats based on the most recent threat information available.

    You can access the feature from the Threat details page.

Improvements

  • IntelliZone users with the Company Admin roles can now view and copy the company and user ID. This information is needed for GravityZone integration.

  • The IOC section in the Threat details page, along with the IoC Reputation side panel have been improved.

  • Clicking on links under the References section in the Threat details page now opens the Bitdefender blog page in a new browser window.

Version 1.10.0

Release date: 2024.04.19

New features

The Graph View window is now available for certain threats. The new feature provides a graphical representation of how a threat spreads and uses certain nodes.

  • You can access the window either from the Extended Threat View or from the Threat Search results.

  • Nodes have different icons and shapes based on their IoC type.

  • Link labels are displayed between nodes that indicate the actions taken by the threat when moving from node to note.

  • You can zoom in an out.

Improvements

  • A new version of the Threat Intelligence API documentation is available.

Version 1.9.0

Release date: 2024.04.03

New features

  • You can select from the following formats when downloading reports from the Sandbox Analyzer page: HTML, JSON, JSON (summary).

Improvements

  • The Submission details pane in the Sandbox Analyzer page now displays the following information: File type, Submission date, and Analysis date.

  • Performed several improvements in the way information is displayed in the Submission details pane in the Sandbox Analyzer page:

    • Improved the way countries are displayed under the Target countries section.

    • Changed spacing for better readability.

  • The More options button on the right side of the All submissions table in the Sandbox Analyzer page has been replaced with the Edit description button.

  • Editing a submission description in the Sandbox Analyzer page now shows the existing description instead of displaying a blank field.

Resolved issue

  • Fixed navigation issues in the Threat Search page.

Version 1.8.0

Release date: 2024.03.13

New features

  • You can now download IoC related information from the Submission details panel in the Sandbox Analyzer page.

Version 1.7.0

Release date: 2024.02.29

New features

  • The Force detonation option is now available when using the Advanced submission feature to submit files in the Sandbox analyzer page.

  • The References section has been added in the Threat view window for a specific threat. When more than one reference is available, the section is displayed in the panel from the Treat search window. The section contains links for articles that are references for the threat being displayed.

Improvements

  • Increased performance for threat information searches.

Version 1.6.0

Release date: 2024.02.07

New features

  • Reputation data is now available when searching for threat information using IP and file indicators.

  • Process indicators are now available when displaying the Threat view window for a specific threat.

  • You can now provide a password when submitting archived files in the Sandbox Analyzer page. The password is used to access the submitted archives.

Improvements

  • The UI in the Actors tab has been improved. You can access the tab when viewing threat information in the Threat Search page.

Version 1.5.1

Release date: 2024.01.18

Resolved issues

  • Fixed several minor bugs.

Version 1.5.0

Release date: 2023.11.22

New features

  • A new tab is available when displaying the Submission details side panel in the Sandbox Analyzer page: IoC. The tab provides access to a comprehensive list of indicators of content provided by Sandbox for the selected submission.

Documentation

  • API documentation specific to all services is now available and provided to customers when purchasing a license for a specific service.

Version 1.4.0

Release date: 2023.11.10

New features

  • The Cumulative search feature is now available in the Threat Search page. This feature allows you to combine multiple search criteria when searching for threats.

Improvements

  • The Help and Support Page has a new and improved UI.

  • The TTL field is no longer being displayed for file and certificate indicators.

Version 1.3.0

Release date: 2023.09.28

Improvements

  • The IoC reputation section has been redesigned. This information is displayed whenever searching for threats using URL, domain, or clean MD5 hash IoCs.

  • The Advanced Feeds tab in the Preview Feeds page is now called Operational Feeds.

  • The Feeds Preview page is now called Preview Feeds.

Version 1.2.0

Release date: 2023.09.11

Improvements

  • You can now download Reputation Feeds previews.

  • IoCs present in threats that have human-analysis tag are now always displayed in relationship to those threats, regardless of their status.

  • IoCs that have the sinkholed tag are now always displayed, regardless of their status.

Version 1.1.0

Release date: 2023.08.23

Improvements

  • General UI quality of life improvements.

  • Added a new panel when viewing threats in the Threat Search page: Threat family profile.

Resolved issues

  • Fixed several minor bugs.

Initial release

Release date: 09.05.2023

Bitdefender IntelliZone is an easy-to-use solution designed to assist security professionals in proactively identifying, monitoring, and mitigating cyber-threats. The Threat Intelligence portal consolidates all the knowledge we've gathered regarding cyber threats and the associated threat actors into a single pane of glass for the security analysts, including access to Bitdefender’s next-generation malware analysis service.

The IntelliZone console is being released with the following features:

  • Threat Search

  • Threat View

  • Preview Feeds

  • Help & Support